6 matches found
Remote file inclusion
Multiple PHP remote file inclusion vulnerabilities in Portail Web Php 2.5.1.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 Vert/index.php, 2 Noir/index.php, and 3 Bleu/index.php in template/, different vectors than CVE-2008-0645...
CVE-2008-1068
The CVE-2008-1068 entry describes multiple PHP remote file inclusion vulnerabilities in Portail Web Php 2.5.1.1 and earlier. The flaw allows an attacker to execute arbitrary PHP code by supplying a URL in the site_path parameter to template contents (Vert/index.php, Noir/index.php, Bleu/index.php...
CVE-2008-0645
Multiple PHP remote file inclusion vulnerabilities in Portail Web Php 2.5.1.1 allow remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 config/conf-activation.php, 2 menu/item.php, and 3 modules/confmodules.php in admin/system/; and 4 system/login.php. NOTE: th...
CVE-2008-0645
Multiple PHP remote file inclusion vulnerabilities in Portail Web Php 2.5.1.1 allow remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter to 1 config/conf-activation.php, 2 menu/item.php, and 3 modules/confmodules.php in admin/system/; and 4 system/login.php. NOTE: th...
CVE-2008-0645
CVE-2008-0645 affects Portail Web Php 2.5.1.1. It describes multiple PHP remote file inclusion vulnerabilities that let an attacker execute arbitrary PHP code via a URL in the site_path parameter to (1) config/conf-activation.php, (2) menu/item.php, (3) modules/conf_modules.php in admin/system/, ...
Portail Web PHP 2.5.1 - login.php Remote File Inclusion
Portail Web PHP 2.5.1 - login.php Remote File Inclusion source: https://www.securityfocus.com/bid/27616/info Portail Web Php is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data. Exploiting these issues may allow an attacker to...